| intCertNum |
2495 |
| strVendorName |
Cavium Inc. |
| strURL |
http://www.cavium.com |
| strAddress1 |
2315 N 1st Street |
| strAddress2 |
|
| strAddress3 |
|
| strCity |
San Jose |
| strStateProv |
CA |
| strPostalCode |
95131 |
| strCountry |
95131 |
| strContact |
Phanikumar Kancharla |
| strEmail |
Phanikumar.Kancharla@caviumnetworks.com |
| strPhone |
408-943-7496 |
| strFax |
n/a |
| strContact2 |
Tejinder Singh |
| strEmail2 |
Tejinder.Singh@caviumnetworks.com |
| strFax2 |
n/a |
| strPhone2 |
408-943-7403 |
| intCertNum |
2495 |
| strModuleName |
NITROXIII CNN35XX-NFBE HSM Family |
| strPartNumber |
Hardware Versions: P/Ns CNL3560P-NFBE-G, CNL3560-NFBE-G, CNL3530-NFBE-G, CNL3510-NFBE-G, CNL3510P-NFBE-G, CNN3560P-NFBE-G, CNN3560-NFBE-G, CNN3530-NFBE-G and CNN3510-NFBE-G;
Firmware Versions: CNN35XX-NFBE-FW-1.0 build 35, CNN35XX-NFBE-FW-1.0 build 38, CNN35XX-NFBE-FW-1.0 build 39, CNN35XX-NFBE-FW-1.0 build 44 or CNN35XX-NFBE-FW-1.0 build 48 |
| memModuleNotes |
When operated in FIPS mode. The module generates cryptographic keys whose strengths are modified by available entropy |
| str140Version |
140-2 |
| _sp_ |
Security Policy [pdf][html][txt] |
| _cert_ |
Certificate [pdf] |
| strPURL |
|
| strModuleType |
Hardware |
| strValidationDate |
12/15/2015;02/23/2016;06/03/2016;08/19/2016 |
| intOverallLevel |
3 |
| memIndividualLevelNotes |
-Mitigation of Other Attacks: N/A;-Operational Environment: N/A |
| strFIPSAlgorithms |
AES (Certs. #2033, #2034, #2035, #3205 and #3206);
CVL (Certs. #167 and #563);
DRBG (Cert. #680);
DSA (Cert. #916);
ECDSA (Cert. #589);
HMAC (Certs. #1233 and #2019);
KAS (Cert. #53);
KAS (SP 800-56B, vendor affirmed);
KBKDF (Cert. #65);
RSA (Cert. #1634);
SHS (Certs. #1780 and #2652);
Triple-DES (Cert. #1311);
KTS (AES Cert. #3206) |
| strOtherAlgorithms |
NDRNG;
RSA (key wrapping;
key establishment methodology provides 112 or 128 bits of encryption strength);
MD5;
RC4;
PBE |
| strConfiguration |
Multi-Chip Embedded |
| memModuleDescription |
CNN35XX-NFBE HSM Family is a high performance purpose built solution for key management and crypto acceleration compliance to FIPS 140-2. The module supports flexible key store that can be partitioned up to 32 individually managed and isolated partitions. This is a SRIOV capable PCIe adapter and can be used in virtualization environment to extend services like virtual key management, crypto and TLS offloads to VMs in dedicated I/O channels. This product is suitable for PKI vendors, SSL servers/load balancers. |
| intModuleCount |
1 |
| memAdditionalNotes |
Updated FW for more accurate debugging options and temperature readings.
Updated FW for minor bug fixes. |
| strFirstValidtionDate |
12/15/15 00:00:00 |
| strLabName |
InfoGard |
| strValidationYear |
2015 |